Malware

About “Bulz.827760” infection

Malware Removal

The Bulz.827760 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Bulz.827760 virus can do?

  • Dynamic (imported) function loading detected
  • CAPE extracted potentially suspicious content
  • Authenticode signature is invalid
  • Binary compilation timestomping detected

How to determine Bulz.827760?



File Info:

name: 39FA10EECF1611C24C2C.mlw
path: /opt/CAPEv2/storage/binaries/4b05ed275084cd4c121a5f5ba9a7cae02792a144d50c65df1d90fbea402e0296
crc32: 49B03F3A
md5: 39fa10eecf1611c24c2c10b02cb84262
sha1: 766d875addd6e066fca0ac37d0cc5621c4c45db2
sha256: 4b05ed275084cd4c121a5f5ba9a7cae02792a144d50c65df1d90fbea402e0296
sha512: e3a240883b8d10ebd71a742b951e1c3b307546fe78a4fbe329123d5650e8e22278a4d0dc9c9d8394ef8e37fc1acd1f1748a979b3a442dd436062a01235e1845e
ssdeep: 3072:fGntW9wgcECriye47M3GF/PHDqfMJ3tzyp3wssPwD35r20jCo8:nyHM3M/7l3dFe35a0j
type: PE32 executable (console) Intel 80386, for MS Windows
tlsh: T19894F89677809A21C56806B4C1F7D93403E7AE873233D64639C5BE973E723D68C8ABC5
sha3_384: ae127e0644fd6bdb119f1d57efa581f2ea5b875681eda8674cd374d27cb0b4ec473267dc57103905da475fa0c5fb1dba
ep_bytes: ff250020400000000000000000000000
timestamp: 2086-02-22 20:42:30


Version Info:

Translation: 0x0000 0x04b0
Comments: 
CompanyName: 
FileDescription: Hecta Reborn Updater Source
FileVersion: 1.0.0.0
InternalName: Hecta Reborn Boostrapper.exe
LegalCopyright: Copyright ©  2021
LegalTrademarks: 
OriginalFilename: Hecta Reborn Boostrapper.exe
ProductName: Hecta Reborn Updater Source
ProductVersion: 1.0.0.0
Assembly Version: 1.0.0.0

Bulz.827760 also known as:

LionicTrojan.Win32.Bulz.4!c
Elasticmalicious (high confidence)
MicroWorld-eScanGen:Variant.Bulz.827760
FireEyeGeneric.mg.39fa10eecf1611c2
CAT-QuickHealTrojan.YakbeexMSIL.ZZ4
McAfeeGenericRXPT-BO!39FA10EECF16
CylanceUnsafe
VIPRETrojan.Win32.Generic!BT
SangforRiskware.Win32.Uwamson.A
Cybereasonmalicious.addd6e
CyrenW32/Trojan.WSID-3270
SymantecML.Attribute.HighConfidence
APEXMalicious
BitDefenderGen:Variant.Bulz.827760
Ad-AwareGen:Variant.Bulz.827760
TrendMicroTROJ_GEN.R002C0WHJ21
McAfee-GW-EditionGenericRXPT-BO!39FA10EECF16
EmsisoftGen:Variant.Bulz.827760 (B)
SentinelOneStatic AI – Malicious PE
AviraHEUR/AGEN.1145854
Antiy-AVLTrojan/Generic.ASMalwS.347E046
MicrosoftTrojan:Win32/Wacatac.B!ml
GDataGen:Variant.Bulz.827760
CynetMalicious (score: 100)
BitDefenderThetaGen:NN.ZemsilF.34294.Bm0@aWCtjti
ALYacGen:Variant.Bulz.827760
MAXmalware (ai score=85)
PandaTrj/GdSda.A
TrendMicro-HouseCallTROJ_GEN.R002C0WHJ21
MaxSecureTrojan.Malware.300983.susgen
FortinetPossibleThreat
AVGWin32:TrojanX-gen [Trj]
AvastWin32:TrojanX-gen [Trj]
CrowdStrikewin/malicious_confidence_60% (W)

How to remove Bulz.827760?

Bulz.827760 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment